$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft File: 25K4P0wYeDkNakTmrtV6d1ImNRI.mft (raw, json) Hash identifier: aVxPkQT6EkAEkO0/LsxivmW0i6TmMM9H7MHIVx+txPU= Subject key identifier: 5A:45:53:36:AE:80:5F:2C:50:00:71:3B:E4:B0:9A:0D:E5:CF:39:21 Authority key identifier: DB:92:B8:3F:4C:18:78:39:0D:6A:44:E6:AE:D5:7A:77:52:26:35:12 Certificate issuer: /CN=A91BBD5B/serialNumber=DB92B83F4C1878390D6A44E6AED57A7752263512 Certificate serial: 1D13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25K4P0wYeDkNakTmrtV6d1ImNRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft Manifest number: 1D08 Signing time: Fri 30 May 2025 16:19:52 +0000 Manifest this update: Fri 30 May 2025 16:19:51 +0000 Manifest next update: Fri 06 Jun 2025 16:19:51 +0000 Files and hashes: 1: 25K4P0wYeDkNakTmrtV6d1ImNRI.crl (hash: Y5/hlhskBmnXWgdd9Vnq8TR7s8h605dlBz2GD360/xs=) 2: AB9480A6BB6811E69E8D1212C4F9AE02.roa (hash: XU2BtSx1XPF+OETuBQTO4A3xSlkRLbVqfxk4yTT8ml4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.crl rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25K4P0wYeDkNakTmrtV6d1ImNRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:19:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7443 (0x1d13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBD5B, serialNumber=DB92B83F4C1878390D6A44E6AED57A7752263512 Validity Not Before: May 30 16:19:51 2025 GMT Not After : Jun 6 16:19:51 2025 GMT Subject: CN=6839daa7-9ad6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a8:92:61:8b:22:e4:4d:c0:e0:a3:c2:08:9d: 4d:7d:87:08:33:78:d5:d2:a6:4e:6b:37:d3:e9:27: 45:13:22:df:b4:d0:7d:8a:9e:ab:ea:ac:97:82:78: 2a:dc:b8:f0:a7:ae:8b:ff:96:a2:0e:92:ee:93:8d: df:7c:01:77:c0:c7:02:9f:1b:52:29:e5:b3:03:52: 3e:55:76:2f:cb:a8:db:7d:f9:6c:e0:9c:1a:a2:9b: da:86:b4:98:b4:9e:8d:3a:ea:49:cf:ab:8b:14:fc: 5e:a5:37:69:62:9c:51:06:74:4b:da:3b:fe:fc:3f: 8f:c8:2c:40:4b:d5:42:0e:30:6f:a7:a2:7b:b4:89: f8:18:2c:0b:58:97:e9:3e:f7:9c:d3:1f:4f:a5:3f: cf:4c:f4:f0:dd:d8:93:a8:01:cc:21:ef:2c:74:58: 89:7e:23:9f:db:1f:4f:bc:f0:55:a0:40:c0:44:8e: 1c:7b:99:99:df:4e:56:70:f6:fc:0a:4d:0c:49:72: 4a:9c:d7:57:67:23:39:bd:6c:85:e7:95:13:bd:c9: 93:d5:56:99:a7:f1:83:3b:2a:23:bd:3b:1d:a4:c6: 39:32:d8:32:30:45:0e:d2:67:7d:48:d7:43:85:1e: 34:ef:28:fa:c1:69:77:f7:84:ae:fd:54:51:29:bb: 89:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:45:53:36:AE:80:5F:2C:50:00:71:3B:E4:B0:9A:0D:E5:CF:39:21 X509v3 Authority Key Identifier: keyid:DB:92:B8:3F:4C:18:78:39:0D:6A:44:E6:AE:D5:7A:77:52:26:35:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25K4P0wYeDkNakTmrtV6d1ImNRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:4d:56:2f:12:7c:37:75:6c:29:66:c8:0e:18:58:45:ae:f3: 52:0c:d9:ef:72:c9:f2:b0:05:04:3b:8f:0a:3b:08:6d:e8:ba: 21:d5:53:08:2d:a5:de:31:c9:7f:ff:d6:70:dd:04:8b:bc:25: af:c8:0c:f1:e0:26:57:91:ee:1f:bd:a5:15:e8:6d:70:5e:bd: bd:db:ed:49:bd:58:af:fd:f1:b1:60:ab:c6:33:3f:29:4e:a7: ef:a5:56:0f:83:00:95:3a:b9:7b:4a:e4:5c:4c:4b:f3:6c:8b: 8b:22:fc:21:b2:23:4f:95:d6:8e:98:a1:a7:9c:53:84:4a:8f: 60:c5:d8:aa:06:0f:ab:a5:33:44:65:22:31:11:a2:a9:2c:40: a8:7a:b3:a4:ca:73:c8:6f:e8:9f:c3:25:63:a3:5e:89:47:06: a9:33:38:7f:1b:4d:07:3c:46:39:bf:26:10:0c:70:ec:88:da: ab:f9:90:be:28:e2:cf:c2:1c:80:35:e0:5a:74:97:1a:9b:c4: 7c:c3:db:16:23:2f:be:1f:2c:c6:67:bc:74:19:fc:ae:6e:7a: 9b:ad:9e:15:21:ad:db:64:49:c2:99:ff:7e:c7:ca:8b:c3:d3: dd:ab:3d:a1:f9:c2:42:7a:f9:e7:d8:30:f2:14:cb:1f:f3:43: d2:d9:6e:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJENUIxMTAvBgNVBAUTKERCOTJCODNGNEMxODc4MzkwRDZBNDRFNkFFRDU3QTc3 NTIyNjM1MTIwHhcNMjUwNTMwMTYxOTUxWhcNMjUwNjA2MTYxOTUxWjAYMRYwFAYD VQQDEw02ODM5ZGFhNy05YWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxaiSYYsi5E3A4KPCCJ1NfYcIM3jV0qZOazfT6SdFEyLftNB9ip6r6qyXgngq 3Ljwp66L/5aiDpLuk43ffAF3wMcCnxtSKeWzA1I+VXYvy6jbffls4JwaopvahrSY tJ6NOupJz6uLFPxepTdpYpxRBnRL2jv+/D+PyCxAS9VCDjBvp6J7tIn4GCwLWJfp Pvec0x9PpT/PTPTw3diTqAHMIe8sdFiJfiOf2x9PvPBVoEDARI4ce5mZ305WcPb8 Ck0MSXJKnNdXZyM5vWyF55UTvcmT1VaZp/GDOyojvTsdpMY5MtgyMEUO0md9SNdD hR407yj6wWl394Su/VRRKbuJWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFpFUzau gF8sUABxO+Swmg3lzzkhMB8GA1UdIwQYMBaAFNuSuD9MGHg5DWpE5q7VendSJjUS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkQ1Qi8xNzAyRkMzRUJC NjcxMUU2QUUyNDA0MEZDNEY5QUUwMi8yNUs0UDB3WWVEa05ha1RtcnRWNmQxSW1O UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI1SzRQMHdZZURrTmFrVG1ydFY2ZDFJbU5SSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkQ1Qi8xNzAyRkMzRUJCNjcxMUU2QUUyNDA0MEZDNEY5QUUwMi8yNUs0UDB3WWVE a05ha1RtcnRWNmQxSW1OUkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXTVYvEnw3dWwpZsgOGFhFrvNSDNnvcsnysAUEO48KOwht6Loh1VMI LaXeMcl//9Zw3QSLvCWvyAzx4CZXke4fvaUV6G1wXr292+1JvViv/fGxYKvGMz8p TqfvpVYPgwCVOrl7SuRcTEvzbIuLIvwhsiNPldaOmKGnnFOESo9gxdiqBg+rpTNE ZSIxEaKpLECoerOkynPIb+ifwyVjo16JRwapMzh/G00HPEY5vyYQDHDsiNqr+ZC+ KOLPwhyANeBadJcam8R8w9sWIy++HyzGZ7x0GfyubnqbrZ4VIa3bZEnCmf9+x8qL w9Pdqz2h+cJCevnn2DDyFMsf80PS2W7c -----END CERTIFICATE-----Generated at Sat May 31 16:39:44 2025 by rpki-client